Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2025
Ran by SYSTEM on MININT-0VRE1S4 (13-01-2025 18:45:56)
Running from D:\\FRST64.exe
Platform: Windows 10 Pro Version 22H2 19045.5247 (X64) Language: Polski (Polska) -> Polski (Polska)
Boot Mode: Recovery
Default: ControlSet001
[b]ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.[/b]


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_a42d9de41f05fa49\RtkAudUService64.exe [2119512 2024-07-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\admin\...\Run: [AMDNoiseSuppression] => "C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
HKLM\Software\...\Authentication\Credential Providers: [{2135f72a-90b5-4ed3-a7f1-8bb705ac276a}] -> C:\Windows\system32\credprovslegacy.dll [2024-06-20] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{25CBB996-92ED-457e-B28C-4774084BD562}] -> C:\Windows\system32\credprovs.dll [2024-06-20] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> C:\Windows\system32\TrustedSignalCredProv.dll [2024-06-20] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{3dd6bec0-8193-4ffe-ae25-e08e39ea4063}] -> C:\Windows\system32\credprovs.dll [2024-06-20] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{60b78e88-ead8-445c-9cfd-0b87f74ea6cd}] -> C:\Windows\system32\credprovs.dll [2024-06-20] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{cb82ea12-9f71-446d-89e1-8d0924e1256e}] -> C:\Windows\system32\credprovslegacy.dll [2024-06-20] (Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DDC0EED2-ADBE-40b6-A217-EDE16A79A0DE}] -> C:\Windows\system32\credprovs.dll [2024-06-20] (Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (All) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2DFC28A5-3035-4555-A9E6-CE6D44EB1DB3} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask
Task: {8FF5DE67-C947-4488-997B-4184221E7D50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start
Task: {D4BCEF25-A336-407C-813C-47E49AE5BBD5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work
Task: {DDFB78F4-3AC6-4AFC-ABFB-BAFBFAFA3234} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler
Task: {45B34613-B7F6-47D4-95C7-AE842FFAF3E2} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184024 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {EDA7534A-64A9-4C9F-8B5C-91FA2088CBAB} - System32\Tasks\AMDScoSupportTypeUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {BAF4B9A8-1B02-4B38-B231-7EA97230256B} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 => {84F0FAE1-C27B-4F6F-807B-28CF6F96287D} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {D5A9F0F2-D7CA-4A2B-8871-C67F2CBEADF1} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 => {429BC048-379E-45E0-80E4-EB1977941B5C} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {1D44DA44-C6A2-454A-AD76-389CB7AB7B77} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical => {613FBA38-A3DF-4AB8-9674-5604984A299A} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {B750F9BA-94F7-495C-9AA5-9E0BFB0E1F63} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical => {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [23952 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {F346D1E4-9974-4A5D-9E35-FE7079A30555} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\Windows\system32\msdrm.dll [570368 2019-12-07] (Microsoft Corporation)
Task: {8E33F0A3-A31E-4E6C-AFF7-844A27E761B7} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\Windows\system32\msdrm.dll [570368 2019-12-07] (Microsoft Corporation)
Task: {5B885149-AF43-451C-A12F-0CD1E0A34023} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\Windows\System32\AppLockerCsp.dll [391168 2024-11-13] (Microsoft Corporation)
Task: {4EBE9A38-6BE4-429E-8588-B460327DB327} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\Windows\system32\appidpolicyconverter.exe [160768 2024-06-20] (Microsoft Corporation)
Task: {7A27D6E9-CB10-42F6-B75D-A53F78486290} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\Windows\system32\appidcertstorecheck.exe [50176 2024-06-20] (Microsoft Corporation)
Task: {87621C29-58F2-4A04-B1FF-6A3DBC4DAC9A} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {87621C29-58F2-4A04-B1FF-6A3DBC4DAC9A} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {87621C29-58F2-4A04-B1FF-6A3DBC4DAC9A} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {7A5AFDB2-56EC-4352-AB44-069E7BF253A8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattelrunner.exe [255080 2024-12-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD43F557-2DB7-49A2-AEF4-DC1C71CBAB07} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaPatchSdbTask
Task: {E6C61C54-81F5-474C-9A49-6122B03CD9B3} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect
Task: {73469C3A-0B60-4A11-AD8A-FC67A901B741} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [255080 2024-12-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D363385-64B8-4207-AC46-3EE180DD87F2} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> Startupscan.dll,SusRunTask
Task: {B5108B49-C39A-43DE-AC49-06155873BAE9} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [120320 2024-06-20] (Microsoft Corporation)
Task: {BA366117-6A44-44F3-9BAA-09C4ADA110CC} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [120320 2024-06-20] (Microsoft Corporation)
Task: {E003BEA4-7D11-4522-9834-25C3F9F93F53} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {F472261A-A57A-465B-A695-5F2E75E37782} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [13312 2024-06-20] (Microsoft Corporation)
Task: {C9FBCD64-0C22-420A-95DC-FDAFDA6F0EB4} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\Windows\system32\AppListBackupLauncher.dll [94208 2024-06-20] (Microsoft Corporation)
Task: {CD0FD427-7A67-4F73-BB6F-AB77049B5716} - System32\Tasks\Microsoft\Windows\AppListBackup\BackupNonMaintenance => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\Windows\system32\AppListBackupLauncher.dll [94208 2024-06-20] (Microsoft Corporation)
Task: {C9ABE41C-5E65-4E52-8BAD-4F1BCA3B5715} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {79E236FD-CC4D-47CF-BD6D-B3FAF24F9EC5} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\Windows\system32\UCPDMgr.exe [181760 2024-12-11] (Microsoft Corporation)
Task: {36A78C3E-A142-4F86-903E-AE26291F646C} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> /d acproxy.dll,PerformAutochkOperations
Task: {34ADEFE8-89DB-43BC-8C0B-14BB34D69F6D} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [72192 2024-06-20] (Microsoft Corporation)
Task: {87094343-6C1F-4855-A6B9-305BA74AB761} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [72192 2024-06-20] (Microsoft Corporation)
Task: {AB05B368-13F7-468A-9B30-E553C06B5449} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\BthUdTask.exe [40448 2019-12-07] (Microsoft Corporation)
Task: {077333D6-06BA-4EA4-BDF4-1CD1439558F2} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask => {E984D939-0E00-4DD9-AC3A-7ACA04745521}
Task: {F0BE4F3E-F4F0-4B98-88EE-57290DDF6CB2} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [279040 2024-06-20] (Microsoft Corporation)
Task: {F67BF9CD-2696-4F2D-9D78-BB8C84A53C1E} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [279040 2024-06-20] (Microsoft Corporation)
Task: {2F63CF7F-0537-4E2A-9F8A-B763EFE907F5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\Windows\system32\ngctasks.dll [279040 2024-06-20] (Microsoft Corporation)
Task: {50DDDD38-168C-486B-966F-A23226488295} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Corporation)
Task: {0EDEA23A-3DEC-41C3-B03E-BC7A3356D6BC} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Corporation)
Task: {78FC1447-DCFF-4832-A268-0ABA89022F48} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\Windows\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Corporation)
Task: {57C76B66-AD3C-4221-81FA-55045859B06F} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [16384 2019-12-07] (Microsoft Corporation)
Task: {3FC4BE91-4A96-48F5-8858-1628CB88EFB5} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [263680 2024-11-13] (Microsoft Corporation) -> %windir% /sysrepair
Task: {A3E2FE09-EC50-4E92-9812-04FFEA03A880} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\Windows\system32\clipesu.exe [273912 2024-11-13] (Microsoft Windows -> Microsoft Corporation)
Task: {5B0ED9ED-6704-45F8-B8C1-93C5A3B5F4FF} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [1167976 2024-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E2550147-8844-41C3-BE07-83BE6CE437FB} - System32\Tasks\Microsoft\Windows\Clip\LicenseImdsIntegration => C:\Windows\system32\fclip.exe [456216 2024-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12514C9A-1DE5-40CE-B66C-D6838DA9A169} - System32\Tasks\Microsoft\Windows\CloudExperienceHost\CreateObjectTask => {E4544ABA-62BF-4C54-AAB2-EC246342626C} C:\Windows\System32\CloudExperienceHostBroker.exe [70016 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {C364BE9E-9FA6-4CBF-9DF6-73927ABE8CB0} - System32\Tasks\Microsoft\Windows\CloudRestore\Backup => {722D0F89-B69C-4700-AE8C-4A44350E4876} C:\Windows\System32\CloudRestoreLauncher.dll [828416 2024-12-11] (Microsoft Corporation)
Task: {F3A32C36-2C14-444B-8A9F-25975CD1154F} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\Windows\System32\unifiedconsent.dll [350720 2024-12-11] (Microsoft Corporation)
Task: {ED77AEE0-EAFB-4133-B544-9E7C5632D902} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\Windows\System32\wsqmcons.exe [120320 2024-06-20] (Microsoft Corporation)
Task: {7572B7F9-BE9D-43BF-9A4E-F82023EDBD33} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\Windows\System32\usbceip.dll [119808 2019-12-07] (Microsoft Corporation)
Task: {304D2127-E6ED-4C82-B9B3-63B3B54A4D66} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [317440 2024-06-20] (Microsoft Corporation)
Task: {90F68E39-00DE-4159-BCDB-5C5759A5CF53} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [317440 2024-06-20] (Microsoft Corporation)
Task: {EAD9ED20-AC69-4E97-8CCB-E8F62CA707B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [317440 2024-06-20] (Microsoft Corporation)
Task: {11D5A2A8-74A7-4768-9A28-5667BAAF4523} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\Windows\system32\defrag.exe [210432 2024-06-20] (Microsoft Corp.)
Task: {4F41B4A1-8822-4B02-90CD-202A0099FFAE} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [82944 2024-12-11] (Microsoft Corporation)
Task: {F278A444-BDB4-4CD1-A2F0-7A2284C32800} - System32\Tasks\Microsoft\Windows\Device Information\Device User => C:\Windows\system32\devicecensus.exe [82944 2024-12-11] (Microsoft Corporation)
Task: {082F4875-D88C-40EA-8706-87480962C446} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\Windows\System32\DeviceSetupManagerAPI.dll [162816 2024-06-20] (Microsoft Corporation)
Task: {9D87DBE9-E563-4708-A9E9-1A6EE5951EC2} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {0016B09F-CFDA-4F5B-A70B-84A75599B89B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {61B4D08B-1B23-4CC8-869E-CF0B7996EF5F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {6AAEEF1D-9661-4720-B127-27C975871238} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {9ECD9F35-130A-4C0C-A551-9D3335B165D7} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {EA82AA60-4BB0-41D9-AA1A-D64D739F55DE} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {5E0DF2C3-3D26-4759-9E02-FB7F4DCD159B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {114EC267-55F2-45DA-9AB6-B98CA9DC0D01} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {AF73DAAA-53AE-4CC8-8671-BE29D886B057} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {C660D735-E9F2-4190-9B4E-97ADF1AFFA16} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {A2FFCE6E-7F06-494A-8C84-6EFCAEB075BB} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\Windows\system32\DeviceDirectoryClient.dll [287744 2024-12-11] (Microsoft Corporation)
Task: {10D327A9-CEBD-4C55-880A-5D523618DF1E} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => {AD08DCC2-4E35-4486-9D49-547CBD30942D} C:\Windows\System32\MitigationClient.dll [512512 2024-12-11] (Microsoft Corporation)
Task: {C3944556-15CF-467E-89E2-29D4BFD3EC5A} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\Windows\System32\sdiagschd.dll [68096 2024-06-20] (Microsoft Corporation)
Task: {55B1C85E-5BEF-4EDB-ADD0-ECEAEF261E7C} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\Windows\system32\directxdatabaseupdater.exe [305664 2024-12-11] (Microsoft Corporation)
Task: {0CBABB27-6DFC-4155-BAE7-AE919B92FEF2} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [251392 2024-12-11] (Microsoft Corporation)
Task: {6AA2E298-C47C-45AE-BF6F-E2D9A555345C} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [299008 2024-06-20] (Microsoft Corporation) -> /autoclean /d %systemdrive%
Task: {B97C7632-DD50-4F07-8E4E-F1450795BF78} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> dfdts.dll,DfdGetDefaultPolicyAndSMART
Task: {3A4032F6-6063-4D54-BAE3-F8A4A5110CDA} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\Windows\system32\DFDWiz.exe [54784 2019-12-07] (Microsoft Corporation)
Task: {C9EC268B-1D36-4AF0-A1EB-2C1BC3B455D9} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\Windows\system32\disksnapshot.exe [85504 2024-06-20] (Microsoft Corporation)
Task: {117E2D01-1275-4560-90E9-A34BB4EE69A3} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\Windows\system32\StorageUsage.dll [161792 2024-10-08] (Microsoft Corporation)
Task: {69D15B8E-729C-4C1C-A0E7-6DCA5E963E60} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\Windows\System32\dusmtask.exe [40960 2024-06-20] (Microsoft Corporation)
Task: {EF4B8F07-FA4B-4CD0-84BC-4A758127E3DD} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [72192 2024-06-20] (Microsoft Corporation)
Task: {3789A597-BD62-4A2F-8F57-AE2D504E0E98} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [72192 2024-06-20] (Microsoft Corporation)
Task: {0E2DCCB3-7B11-40CF-B973-90F22732E317} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [72192 2024-06-20] (Microsoft Corporation)
Task: {66A3F618-0C70-4F70-9BBA-735CCDB43A09} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\Windows\System32\edptask.dll [72192 2024-06-20] (Microsoft Corporation)
Task: {F8FEDA28-6261-4385-844A-684E6C988577} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\Windows\System32\MitigationConfiguration.dll [86528 2024-06-20] (Microsoft Corporation)
Task: {92FFE795-C628-4324-AB97-06F804352DB6} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [120832 2024-06-20] (Microsoft Corporation)
Task: {7617E03F-109E-435B-9B4C-0282CD5BE4A9} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\Windows\system32\dmclient.exe [120832 2024-06-20] (Microsoft Corporation)
Task: {ABD732A1-2D52-44EB-982A-A43D8B61ABA0} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync => {2AE64751-B728-4D6B-97A0-B2DA2E7D2A3B} C:\Windows\System32\srmclient.dll [1349120 2024-06-20] (Microsoft Corporation)
Task: {2EE7F450-D2B6-4D5E-AFE0-A8699149E79E} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\Windows\System32\fhtask.dll [61952 2024-06-20] (Microsoft Corporation)
Task: {C7AC0FC5-88F8-40A7-855A-8830956628A7} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [472576 2024-12-11] (Microsoft Corporation)
Task: {A45852B0-19F5-4B1C-8841-3703266B9E9E} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing => {99EFDAD1-0F11-4A6B-A702-4E1C37D1A3EF} C:\Windows\System32\fcon.dll [472576 2024-12-11] (Microsoft Corporation)
Task: {FB2AB2A8-E6A6-4E93-BB62-FF63C9EDE91D} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting => {BBFCD054-8AAC-45DE-A1EB-7B246C9028AF} C:\Windows\System32\fcon.dll [472576 2024-12-11] (Microsoft Corporation)
Task: {67E53702-919A-4165-807D-45D95C2488E6} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [436224 2024-09-11] (Microsoft Corporation)
Task: {12DF3F8A-9612-48CA-AE38-2818FA70CA73} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [511488 2024-07-11] ()
Task: {CADF1293-5495-426F-8E37-A30F69274AF4} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable => {8E7C2AFB-72B9-415C-9AC2-5037693309B7} C:\Windows\System32\InputCloudStore.dll [230912 2024-12-11] (Microsoft Corporation)
Task: {DA42085F-11E4-4EE1-A363-1898204812F5} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [230912 2024-12-11] (Microsoft Corporation)
Task: {4A0DEFDA-A2B8-4736-88E1-A578E00D9704} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [230912 2024-12-11] (Microsoft Corporation)
Task: {7C4733D2-81D6-4CA3-B30C-E00B496B9857} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [230912 2024-12-11] (Microsoft Corporation)
Task: {A08D6A77-C926-4E78-9ED0-09836E2769AE} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [242688 2024-12-11] (Microsoft Corporation)
Task: {A2FADBDF-6855-42F7-BDFC-F0C510EDA9BC} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [242688 2024-12-11] (Microsoft Corporation)
Task: {44AF7ADA-1C0D-43B1-A063-9E7581F7730B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [242688 2024-12-11] (Microsoft Corporation)
Task: {9B29B882-A95C-438B-BF91-E7C31B1D82D1} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [242688 2024-12-11] (Microsoft Corporation)
Task: {EC3EFE4E-A2E4-4C66-975C-CA2EFD0D42CD} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [242688 2024-12-11] (Microsoft Corporation)
Task: {A60D9ECB-A6F4-4FE1-9BD7-B049487A67E7} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings => {10D62541-90D0-42FE-848C-0DBC1AC42EDA} C:\Windows\System32\CoreGlobConfig.dll [217616 2024-12-11] (Microsoft Windows -> Microsoft Corporation)
Task: {7A7B60AA-BA42-409F-BC97-7BCFEFAD6308} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [206336 2024-12-11] (Microsoft Corporation)
Task: {A499FA48-7057-4AC1-9702-44C6FD924058} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources => {D0582E3B-3126-4CAA-9155-AC37C912A489}
Task: {9520602D-5D35-49BC-B397-5251EC6364E8} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [206336 2024-12-11] (Microsoft Corporation)
Task: {A28E2F31-2C6D-426C-A2AC-2F9F6952D916} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [74752 2024-06-20] (Microsoft Corporation)
Task: {E88D9B2C-DDEA-47B2-9582-085153004DB5} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe [71168 2024-06-20] (Microsoft Corporation)
Task: {E32B86AB-ABAA-45A7-9BE7-9BB2E6B7837D} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [62464 2024-06-20] (Microsoft Corporation)
Task: {6F063424-E8AD-40FA-92B9-CD047EC2A92A} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\Windows\system32\WinSATAPI.dll [377856 2024-06-20] (Microsoft Corporation)
Task: {80DCC37D-8A79-44BE-A65D-C94737ED8DB4} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [200704 2024-12-11] (Microsoft Corporation)
Task: {F4B366A9-7D19-429F-BDBF-508BC8918158} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\Windows\System32\Autopilot.dll [200704 2024-12-11] (Microsoft Corporation)
Task: {E38739C8-A84F-4F9B-8913-DCA75BC35C79} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\Windows\system32\ProvTool.exe [87040 2024-12-11] (Microsoft Corporation)
Task: {80436C26-BC19-4930-9051-F06F0E0BA960} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\Windows\system32\ProvTool.exe [87040 2024-12-11] (Microsoft Corporation)
Task: {2AD5F8AE-8128-49DD-AB67-7D9052D0C609} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Retry => C:\Windows\system32\ProvTool.exe [87040 2024-12-11] (Microsoft Corporation)
Task: {E91D1CC3-09DF-45F0-8208-474AEE6B0A16} - System32\Tasks\Microsoft\Windows\Management\Provisioning\RunOnReboot => C:\Windows\system32\ProvTool.exe [87040 2024-12-11] (Microsoft Corporation)
Task: {701473A3-4C61-4063-AAC6-871E22A29FE7} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\Windows\System32\mapstoasttask.dll [54272 2024-06-20] (Microsoft Corporation)
Task: {E577C99D-E5DD-43E8-9E9F-2D291B431572} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\Windows\System32\mapsupdatetask.dll [45568 2024-06-20] (Microsoft Corporation)
Task: {F715A105-1889-41A3-A658-F66797D723C7} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168e74a-b39f-46d8-adcd-7bed477b80a3} C:\Windows\System32\MemoryDiagnostic.dll [33792 2024-06-20] (Microsoft Corporation)
Task: {BFAFA563-C21E-4AC6-BF51-99C72FB92DDA} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168e74a-b39f-46d8-adcd-7bed477b80a3} C:\Windows\System32\MemoryDiagnostic.dll [33792 2024-06-20] (Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\Windows\System32\MbaeParserTask.exe [119296 2019-12-07] (Microsoft Corporation)
Task: {6EE3AFA8-CBB1-4E6E-B0B4-ABFF3127206C} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\Windows\system32\lpremove.exe [96768 2024-12-11] (Microsoft Corporation)
Task: {9486DC81-1119-4559-9110-1A771DEC137A} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\Windows\System32\PlaySndSrv.dll [90112 2024-06-20] (Microsoft Corporation)
Task: {3A6DB6F9-A355-420A-B6E0-7C54D12F4033} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => C:\Windows\system32\gatherNetworkInfo.vbs [88781 2019-12-07] ()
Task: {C34E99FC-E9DA-45EE-AF9B-77AAD0B1B25F} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\Windows\System32\WiFiTask.exe [133608 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {F9B4828D-4332-47CE-800C-424D9E9FA7EA} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\Windows\System32\cscui.dll [820224 2024-06-20] (Microsoft Corporation)
Task: {F5FC7E3B-649D-4B44-B707-08049E1DC537} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\Windows\System32\cscui.dll [820224 2024-06-20] (Microsoft Corporation)
Task: {463843CA-393E-4753-8AD4-B48453FBADF7} - System32\Tasks\Microsoft\Windows\PI\SecureBootEncodeUEFI => C:\Windows\system32\SecureBootEncodeUEFI.exe [143872 2024-10-08] (Microsoft Corporation)
Task: {588EE9C7-AD31-4CB6-AE0B-7EDD14148A9B} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [475648 2024-11-13] (Microsoft Corporation)
Task: {69BD8958-5A74-4413-B63D-6C5C1CBF1EC8} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [475648 2024-11-13] (Microsoft Corporation)
Task: {C0467AB3-5004-4E13-BD2C-8DDF2AB880B5} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [91648 2024-06-20] (Microsoft Corporation)
Task: {4E3AEDFB-B76C-4C12-A54F-3BD72A10C434} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [49664 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {DF27E6F5-E07E-4744-981B-BB5BC982261C} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\Windows\System32\drvinst.exe [349696 2024-12-11] (Microsoft Corporation)
Task: {D9353C30-D505-4F11-8F95-55F3DDA1E214} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\Windows\System32\energytask.dll [26624 2024-06-20] (Microsoft Corporation)
Task: {35525E8D-FD60-47BF-8D11-FA4F778C57C3} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [100352 2024-06-20] (Microsoft Corporation)
Task: {E89A181E-5416-4AF5-9616-3CDC7F63AE9C} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\Windows\System32\PrinterCleanupTask.dll [86528 2024-12-11] (Microsoft Corporation)
Task: {7D2DFE98-29D9-4E32-AE4E-3B673A4EDF1A} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Corporation) -> start pushtoinstall login
Task: {51E61314-58FB-4D2B-905C-4371AF3CBD09} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Corporation) -> start pushtoinstall registration
Task: {C0E197F6-2E40-46FD-83DA-BE8704EF2CE5} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\Windows\system32\rasmbmgr.dll [61952 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F0FCA53B-F391-48AD-91F6-D1994846E55E} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\Windows\System32\ReAgentTask.dll [13824 2019-12-07] (Microsoft Corporation)
Task: {00446CF1-8668-472D-BEDD-D0BB88DBA009} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\Windows\System32\regidle.dll [15872 2019-12-07] (Microsoft Corporation)
Task: {CC4F585B-EBBB-4AA6-9BDF-B28C489A9125} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\Windows\system32\RAServer.exe [135168 2024-06-20] (Microsoft Corporation) -> %windir%\/offerraupdate
Task: {8627F38D-3BB5-45A5-AAE5-B8735A41B62D} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => {752073A1-23F2-4396-85F0-8FDB879ED0ED} C:\Windows\servicing\TrustedInstaller.exe [193008 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {E51EADD7-C4F7-43E7-A9CB-FEC8EC1E204F} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\Windows\system32\SettingSyncCore.dll [1128960 2024-06-20] (Microsoft Corporation)
Task: {7445D17B-89AB-43F3-B904-4DD68B19A6F2} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => {A4173A49-F373-4475-9A0F-2D615204DC20} C:\Windows\system32\SettingSyncCore.dll [1128960 2024-06-20] (Microsoft Corporation)
Task: {8DB27523-093D-4B93-A00B-68F6317DFAE1} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
Task: {EC95F45C-0486-40E1-8938-20FE3E377E7D} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask => {990A9F8F-301F-45F7-8D0E-68C5952DBA43} C:\Windows\system32\shell32.dll [7823080 2024-12-11] (Microsoft Windows -> Microsoft Corporation)
Task: {DFDC1B83-7FD3-4C77-8CD1-7391D1680ACA} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\Windows\System32\wpcmon.exe [1188048 2024-07-11] (Microsoft Windows -> Microsoft Corporation)
Task: {CD0446AF-D5F6-4616-85CE-058C20FCE9EC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\Windows\System32\WpcRefreshTask.dll [1050624 2024-07-11] (Microsoft Corporation)
Task: {C483CE25-B1C5-4BEB-AA31-5CADC8C66692} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\Windows\System32\srchadmin.dll [218112 2024-06-20] (Microsoft Corporation)
Task: {C952D85B-9DC4-4BEF-AE4D-1752F1860D1A} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [142336 2024-06-20] (Microsoft Corporation)
Task: {008539BF-83F9-4483-9E0A-EEEE6EAC0A08} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask => {09C5DD34-009D-40FA-BCB9-0165AD0C15D4} C:\Windows\System32\Windows.UI.Immersive.dll [1256448 2024-06-20] (Microsoft Corporation)
Task: {892625FE-213B-4B60-95ED-A1CEFCAA365D} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [608768 2024-11-13] (Microsoft Corporation)
Task: {3AB082DC-B77E-4487-BB5D-5DCB3A6C2B3C} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\Windows\System32\sppcext.dll [608768 2024-11-13] (Microsoft Corporation)
Task: {A9C498D6-046E-407B-A5B5-597DFC8756D9} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\Windows\system32\SpaceAgent.exe [165888 2024-06-20] (Microsoft Corporation)
Task: {AFEE5D15-0E83-432F-9DB0-58A2702115E1} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\Windows\system32\spaceman.exe [80880 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {4D595DA6-BC59-47AE-A527-EC01FCE2E615} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [222208 2024-12-11] (Microsoft Corporation)
Task: {58CCC4DA-C86D-4E3D-8FAF-A7B24D8F3950} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {D777B567-BB3B-4111-881C-0CB741022B0C} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [326144 2024-06-20] (Microsoft Corporation)
Task: {FC3767EA-5307-4D11-BA38-EB21A39737D7} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\Windows\system32\defrag.exe [210432 2024-06-20] (Microsoft Corp.)
Task: {67FBD64E-9591-4AB7-9950-E9794C54D390} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [182128 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {38CBBEEE-407D-47AE-969C-E32D0EEE1933} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [182128 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {64614AC8-EA46-476D-A71C-2C0B055C95CC} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\Windows\system32\sysmain.dll [1005056 2024-06-20] (Microsoft Corporation)
Task: {236EEE35-EDD5-418B-BCD5-293F6FAD7966} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\Windows\system32\sysmain.dll [1005056 2024-06-20] (Microsoft Corporation)
Task: {051DF697-AF10-4DB6-9B93-E1A4E35F00F7} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\Windows\system32\sysmain.dll [1005056 2024-06-20] (Microsoft Corporation)
Task: {638672E6-20F1-499D-BFCC-9EA7935257C4} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> sysmain.dll,PfSvWsSwapAssessmentTask
Task: {20546688-8F7B-4B82-8429-7E7E4F537E96} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe [59392 2024-06-20] (Microsoft Corporation)
Task: {7BE5585E-0190-458B-9CEC-F4076574C717} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\Windows\system32\wdc.dll [739840 2019-12-07] (Microsoft Corporation)
Task: {88CE6B8C-B14B-499A-8D43-214F06116F07} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\Windows\system32\MsCtfMonitor.dll [94208 2024-06-20] (Microsoft Corporation)
Task: {F5E862B9-98AE-458E-BC87-3ED25EFBB4D3} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\Windows\system32\TimeSyncTask.dll [15360 2019-12-07] (Microsoft Corporation)
Task: {1FDAEDB1-C8AA-43FA-B046-3CDDDA12661E} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Corporation) -> start w32time task_started
Task: {C4C11C95-C597-4541-B0FF-0FB2C761FC92} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [70144 2019-12-07] (Microsoft Corporation)
Task: {55C78BE4-D631-490C-8B93-050D9F231C36} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [475648 2024-11-13] (Microsoft Corporation)
Task: {D1F99C98-0E31-49CF-A2A4-8A1D6E174C1D} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\Windows\system32\TpmTasks.dll [475648 2024-11-13] (Microsoft Corporation)
Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [463232 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {284CE602-B17F-44EB-A2B3-AE929F4BFD63} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => C:\Windows\system32\MusNotification.exe [695808 2024-12-11] (Microsoft Corporation)
Task: {7B4B8F17-D4EC-4088-B5F8-B80133D15A4A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\Windows\system32\MusNotification.exe [695808 2024-12-11] (Microsoft Corporation)
Task: {8E403876-F371-4B8C-9EFC-11F1C9E0D960} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\Windows\system32\MusNotification.exe [695808 2024-12-11] (Microsoft Corporation)
Task: {70EA2999-165C-4933-9027-250FB8B772F8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Report policies => C:\Windows\system32\usoclient.exe [115712 2024-12-11] (Microsoft Corporation)
Task: {900B9403-ABC1-428F-8142-18E9F7D75777} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work => C:\Windows\system32\usoclient.exe [115712 2024-12-11] (Microsoft Corporation)
Task: {2908AB75-9C0F-42AE-97A5-DCE362B767AB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\Windows\system32\usoclient.exe [115712 2024-12-11] (Microsoft Corporation)
Task: {309BA321-F7C8-46A4-BA50-5FAC484229CB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\Windows\system32\usoclient.exe [115712 2024-12-11] (Microsoft Corporation)
Task: {D4AD31A0-0054-4288-91E5-3867649D171A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work => C:\Windows\system32\usoclient.exe [115712 2024-12-11] (Microsoft Corporation)
Task: {CB673CE4-960F-462D-AAD7-CDA0CD9FE030} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask => C:\Windows\system32\usoclient.exe [115712 2024-12-11] (Microsoft Corporation)
Task: {4671B5C1-A383-4428-A45A-8D348E4CB873} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\Windows\system32\MusNotification.exe [695808 2024-12-11] (Microsoft Corporation)
Task: {57FF06A5-1054-4791-9938-1C3E61F00B07} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Corporation) -> config upnphost start= auto
Task: {C5D47392-881C-422A-9BF8-E4916B55CD22} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [55808 2024-06-20] (Microsoft Corporation)
Task: {3E51A991-10E2-4B16-B5B4-A2F051544BB9} - System32\Tasks\Microsoft\Windows\User Profile Service\HiveUploadTask => {BA677074-762C-444B-94C8-8C83F93F6605} C:\Windows\system32\profsvc.dll [488448 2024-06-20] (Microsoft Corporation)
Task: {0CEC0B91-4AE9-4E8A-ACB2-3B4C811F442C} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {1E334E22-CBC0-4D9C-B830-F1CC1BD6DCFD} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\Windows\System32\WiFiTask.exe [133608 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {4D36FC3F-B740-4739-9A9D-C43793F201B8} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\Windows\System32\wdi.dll [105472 2019-12-07] (Microsoft Corporation)
Task: {0E36C6E3-FBE5-4035-B0C1-7AF1E9424F72} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F80EEF8D-7C3F-43CB-8C80-6D05412351C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C417EB84-BC05-46F4-969E-DB979E2ADCDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A2295F54-A8AC-4313-8C4F-3A001264A63E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {75A35C91-670A-4071-BB93-066651438E14} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\Windows\system32\wermgr.exe [237424 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {86158314-60CF-4F3F-85B5-2399327EA496} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => C:\Windows\system32\rundll32.exe [89600 2024-07-11] (Microsoft Corporation) -> bfe.dll,BfeOnServiceStartTypeChange
Task: {D24B6509-E8CD-436B-B6AA-A8B6CAFCD15E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [71168 2019-12-06] (Microsoft Corporation)
Task: {AA70A383-6F5D-470B-AA6B-B324620D9C75} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490D-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [708256 2024-11-13] (Microsoft Windows -> Microsoft Corporation)
Task: {65652106-33FF-4A75-9C7C-A2A158EC5E73} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [250368 2024-12-11] (Microsoft Corporation)
Task: {D85F83F5-ED09-49BC-A506-32C837CA0904} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\Windows\system32\wininet.dll [5045760 2024-08-15] (Microsoft Corporation)
Task: {5E351EE7-F0D4-4F41-A05C-907EB1A33CE8} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [283136 2024-12-11] (Microsoft Corporation)
Task: {586F7782-DD4A-43FA-B994-12456E778471} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\Windows\system32\WofTasks.dll [30720 2019-12-07] (Microsoft Corporation)
Task: {7DEF10E3-A8CD-4569-8C19-C742D4747228} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\Windows\system32\WofTasks.dll [30720 2019-12-07] (Microsoft Corporation)
Task: {F93E2A44-7E3E-49FE-9F66-12B1F4A037C0} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [230400 2024-06-20] (Microsoft Corporation)
Task: {6440C5E0-A168-4A5F-B84E-F7C8C0A6E933} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [230400 2024-06-20] (Microsoft Corporation)
Task: {4BDB5047-01B7-48D5-AE7E-720EDA7D2049} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [468992 2024-06-20] (Microsoft Corporation)
Task: {571A0A5E-B60E-4A25-BEFB-ABB3C6BB6B78} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [52736 2024-08-15] (Microsoft Corporation)
Task: {35D4C945-33D4-43B6-83D3-99034D411E25} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\Windows\System32\dsregcmd.exe [468992 2024-06-20] (Microsoft Corporation)
Task: {DF6A7742-913B-4025-B27A-CE65BB343A0D} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\Windows\System32\WiFiTask.exe [133608 2024-06-20] (Microsoft Windows -> Microsoft Corporation)
Task: {F8501634-2770-4C88-BC3B-3680F2211CFB} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery => {C93CF9D5-031B-4AAA-AB0B-EF802347B381} C:\Windows\System32\MBMediaManager.dll [746496 2024-06-20] (Microsoft Corporation)
Task: {41F5FC9D-EE65-4CA4-A908-91B3587198E0} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [33792 2024-06-20] (Microsoft Corporation)
Task: {E78D8C4C-8FDF-4404-8620-D4D2780C0F80} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4967E542-9778-4585-9C7A-819E4BCBE431} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [214952 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {DA23996D-78ED-46BE-A04D-25C24F59B015} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {ADA2913B-EE97-4671-9843-063DC6EBD4B3} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3701954500-3044198085-3446947233-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe  /reporting (No File) <==== ATTENTION
Task: {5FFAC695-29BC-46FA-8969-DA3BA3365CBB} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3701954500-3044198085-3446947233-1001 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe  (No File) <==== ATTENTION
Task: {C1A1C7BC-B5F9-4C7F-B1C7-DE82E12D6C5D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {43E39DE4-7EB9-49E3-8B41-2CE9E168F027} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 Everything; C:\Users\admin\AppData\Local\Temp\4047c7df-3e76-40da-9e93-6c3393c68138_Everything-1.4.1.1026.x64.zip.138\everything.exe [2265104 2024-09-21] (voidtools -> voidtools) <==== ATTENTION
S2 FMAPOService; C:\Windows\System32\FMService64.exe [550320 2022-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 HotKeyServiceUWP; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\HotKeyServiceUWP.exe [1510464 2024-10-28] (HP Inc. -> HP Inc.)
S2 HPAppHelperCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\AppHelperCap.exe [912520 2024-11-10] (HP Inc. -> HP Inc.)
S2 HPAudioAnalytics; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\HPAudioAnalytics.exe [516184 2024-10-28] (HP Inc. -> HP Inc.)
S2 HPDiagsCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\DiagsCap.exe [910984 2024-11-10] (HP Inc. -> HP Inc.)
S2 HPNetworkCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\NetworkCap.exe [906864 2024-11-10] (HP Inc. -> HP Inc.)
S2 HPSysInfoCap; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_26fc17003b152561\x64\SysInfoCap.exe [911472 2024-11-10] (HP Inc. -> HP Inc.)
S2 HpTouchpointAnalyticsService; C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_273967626e857c15\x64\TouchpointAnalyticsClientService.exe [568896 2024-05-07] (HP Inc. -> HP Inc.)
S2 LanWlanWwanSwitchingServiceUWP; C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_b8c54d887660aa14\LanWlanWwanSwitchingServiceUWP.exe [605280 2024-10-28] (HP Inc. -> HP Inc.)
S2 SECOMNService; C:\Windows\System32\SECOMN64.exe [751104 2022-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Sound Research, Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [550912 2024-10-08] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [18432 2019-12-07] (Microsoft Corporation)
S3 Acx01000; C:\Windows\System32\drivers\Acx01000.sys [694272 2024-06-20] (Microsoft Corporation)
S1 afunix; C:\Windows\system32\drivers\afunix.sys [44032 2024-06-20] (Microsoft Corporation)
S1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [30720 2024-06-20] (Microsoft Corporation)
S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [305152 2024-12-11] (Microsoft Corporation)
S3 amdfendrmgr; C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrmgr.sys [25672 2024-04-23] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S2 AMDRyzenMasterDriverV20; C:\Windows\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
S3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdkmdag.sys [106596128 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
S3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [18432 2024-11-13] (Microsoft Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2019-12-07] (Windows (R) Win 7 DDK provider)
S1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-12-07] (Microsoft Corporation)
S3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [117760 2024-06-20] (Microsoft Corporation)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation)
S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [113664 2024-07-11] (Microsoft Corporation)
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation)
S3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [106496 2024-06-20] (Microsoft Corporation)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [45568 2024-07-11] (Microsoft Corporation)
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation)
S3 BthPan; C:\Windows\System32\drivers\bthpan.sys [133632 2024-06-20] (Microsoft Corporation)
S3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [1570304 2024-07-11] (Microsoft Corporation)
S3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [110592 2024-07-11] (Microsoft Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [100864 2024-06-20] (Microsoft Corporation)
S1 cdrom; C:\Windows\System32\drivers\cdrom.sys [175616 2024-06-20] (Microsoft Corporation)
S1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [95232 2024-06-20] ()
S3 circlass; C:\Windows\System32\drivers\circlass.sys [52224 2019-12-07] (Microsoft Corporation)
S2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [505344 2024-12-11] (Microsoft Corporation)
S1 CSC; C:\Windows\System32\drivers\csc.sys [587264 2024-11-13] (Microsoft Corporation)
S1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [154112 2024-10-02] (Microsoft Corporation)
S1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [59392 2019-12-07] (Microsoft Corporation)
S1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8704 2019-12-07] (Microsoft Corporation)
S3 HdAudAddService; C:\Windows\System32\drivers\HdAudio.sys [430080 2024-06-20] (Microsoft Corporation)
S3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [138752 2024-10-02] (Microsoft Corporation)
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [120320 2024-06-20] (Microsoft Corporation)
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [48640 2019-12-07] (Microsoft Corporation)
S3 hidspi; C:\Windows\System32\drivers\hidspi.sys [104448 2024-06-20] (Microsoft Corporation)
S3 HidSpiCx; C:\Windows\System32\drivers\HidSpiCx.sys [92160 2024-06-20] (Microsoft Corporation)
S3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [44032 2024-06-20] (Microsoft Corporation)
S3 HPCustomCapDriver; C:\Windows\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [30208 2019-12-07] (Microsoft Corporation)
S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [47104 2024-06-20] (Microsoft Corporation)
S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [30720 2019-12-07] (Microsoft Corporation)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [91648 2024-06-20] (Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [228352 2024-06-20] (Microsoft Corporation)
S3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [37376 2024-10-02] (Microsoft Corporation)
S2 lltdio; C:\Windows\System32\drivers\lltdio.sys [72704 2019-12-07] (Microsoft Corporation)
S2 luafv; C:\Windows\system32\drivers\luafv.sys [147968 2024-11-13] (Microsoft Corporation)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [399360 2024-12-11] (Microsoft Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [66048 2024-06-20] (Microsoft Corporation)
S2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [53248 2024-06-20] (Microsoft Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [47104 2024-06-20] (Microsoft Corporation)
S3 monitor; C:\Windows\System32\drivers\monitor.sys [83456 2024-06-20] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [165888 2024-06-20] (Microsoft Corporation)
S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [129536 2024-12-11] (Microsoft Corporation)
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [12288 2019-12-07] (Microsoft Corporation)
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [38400 2024-10-08] (Microsoft Corporation)
S2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [78848 2019-12-07] (Microsoft Corporation)
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [758784 2024-11-13] (Microsoft Corporation)
S1 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [54272 2019-12-07] (Microsoft Corporation)
S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [135168 2024-06-20] (Microsoft Corporation)
S3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [28672 2024-06-20] (Microsoft Corporation)
S3 NdisWan; C:\Windows\System32\drivers\ndiswan.sys [208384 2024-06-20] (Microsoft Corporation)
S3 ndiswanlegacy; C:\Windows\System32\DRIVERS\ndiswan.sys [208384 2024-06-20] (Microsoft Corporation)
S3 ndproxy; C:\Windows\System32\DRIVERS\NDProxy.sys [93696 2024-06-20] (Microsoft Corporation)
S2 Ndu; C:\Windows\System32\drivers\Ndu.sys [131584 2019-12-07] (Microsoft Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [210944 2024-06-20] (Microsoft Corporation)
S1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [341504 2024-06-20] (Microsoft Corporation)
S1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [48640 2024-06-20] (Microsoft Corporation)
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [823296 2024-06-20] (Microsoft Corporation)
S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [17408 2019-12-07] (Microsoft Corporation)
S3 PptpMiniport; C:\Windows\System32\drivers\raspptp.sys [105984 2024-06-20] (Microsoft Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [53248 2019-12-07] (Microsoft Corporation)
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [20480 2024-06-20] (Microsoft Corporation)
S3 RasAgileVpn; C:\Windows\System32\drivers\AgileVpn.sys [115200 2024-06-20] (Microsoft Corporation)
S3 Rasl2tp; C:\Windows\System32\drivers\rasl2tp.sys [112640 2024-06-20] (Microsoft Corporation)
S3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [89088 2024-06-20] (Microsoft Corporation)
S3 RasSstp; C:\Windows\System32\drivers\rassstp.sys [87552 2024-06-20] (Microsoft Corporation)
S3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [28672 2019-12-07] (Microsoft Corporation)
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [170496 2024-06-20] (Microsoft Corporation)
S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [213504 2024-06-20] (Microsoft Corporation)
S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [115712 2019-12-07] (Microsoft Corporation)
S2 rspndr; C:\Windows\System32\drivers\rspndr.sys [89088 2019-12-07] (Microsoft Corporation)
S3 rtvdevw10; C:\Windows\System32\drivers\rtvdevw10x64.sys [39008 2021-03-31] (Realtek Semiconductor Corp. -> Realtek)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [44032 2024-07-11] (Microsoft Corporation)
S3 SIVDriver; C:\Windows\system32\Drivers\SIVX64.sys [208456 2024-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Ray Hinchliffe)
S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [172544 2019-12-07] (Microsoft Corporation)
S3 spaceparser; C:\Windows\System32\drivers\spaceparser.sys [26624 2019-12-07] (Microsoft Corporation)
S3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [792064 2024-06-20] (Microsoft Corporation)
S3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [318976 2024-06-20] (Microsoft Corporation)
S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [6656 2024-06-20] (Microsoft Corporation)
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [56320 2024-06-20] (Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [66560 2019-12-07] (Microsoft Corporation)
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [37888 2024-06-20] (Microsoft Corporation)
S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [137728 2024-06-20] (Microsoft Corporation)
S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [129024 2024-06-20] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [160256 2024-06-20] (Microsoft Corporation)
S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [188416 2019-12-07] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [36864 2019-12-07] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [113152 2024-06-20] (Microsoft Corporation)
S1 UCPD; C:\Windows\System32\drivers\UCPD.sys [86016 2024-12-11] (Microsoft Corporation)
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [345088 2024-06-20] (Microsoft Corporation)
S3 usbaudio; C:\Windows\system32\drivers\usbaudio.sys [205824 2024-06-20] (Microsoft Corporation)
S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Corporation)
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [107520 2019-12-07] (Microsoft Corporation)
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2024-06-20] (Microsoft Corporation)
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [43008 2024-10-02] (Microsoft Corporation)
S3 usbser; C:\Windows\System32\drivers\usbser.sys [81408 2024-06-20] (Microsoft Corporation)
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [39424 2024-06-20] (Microsoft Corporation)
S3 VirtualRender; C:\Windows\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys [11264 2019-12-07] (Microsoft Corporation)
S1 vwififlt; C:\Windows\System32\drivers\vwififlt.sys [77824 2024-06-20] (Microsoft Corporation)
S2 wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [93184 2024-06-20] (Microsoft Corporation)
S3 wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [93184 2024-06-20] (Microsoft Corporation)
S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [93184 2024-06-20] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [967168 2024-11-13] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 WinNat; C:\Windows\System32\drivers\winnat.sys [266752 2024-12-11] (Microsoft Corporation)
S3 WINUSB; C:\Windows\System32\drivers\WinUSB.SYS [107008 2019-12-07] (Microsoft Corporation)
S3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [136192 2024-06-20] (Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [315904 2024-06-20] (Microsoft Corporation)
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [315904 2024-06-20] (Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [340480 2024-08-15] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [61952 2024-06-20] (Microsoft Corporation)
UpperFilters: [{4D36E96B-E325-11CE-BFC1-08002BE10318}] -> [SynTP kbdclass]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (All) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-13 18:45 - 2025-01-13 18:45 - 000000000 ____D C:\FRST
2025-01-13 01:55 - 2025-01-13 01:56 - 000000000 ____D C:\KRD2018_Data
2025-01-13 01:25 - 2025-01-13 01:25 - 000000000 ___HD C:\$SysReset
2025-01-09 18:56 - 2025-01-09 18:56 - 000000728 _____ C:\Windows\ntbtlog.txt
2025-01-09 18:39 - 2025-01-09 18:39 - 000000000 ____D C:\Windows\System32\config\backup1
2025-01-09 18:36 - 2025-01-09 18:36 - 000000000 ____D C:\Windows\System32\config\backup
2025-01-09 17:06 - 2025-01-09 17:06 - 000000000 ____D C:\Program Files\Portrait Displays
2024-12-30 21:38 - 2024-12-30 21:38 - 000001429 _____ C:\Users\admin\Desktop\GoogleChromePortable.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-09 17:48 - 2024-06-20 06:57 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-01-09 17:07 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\System32\config\BBI
2025-01-09 06:56 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-09 06:38 - 2024-06-20 09:07 - 000000000 ____D C:\Users\admin\AppData\Local\D3DSCache
2025-01-09 06:35 - 2024-09-07 18:47 - 000000000 ____D C:\Users\admin\AppData\Local\CrashDumps
2025-01-09 01:07 - 2024-06-20 09:06 - 001678238 _____ C:\Windows\System32\PerfStringBackup.INI
2025-01-09 01:07 - 2019-12-07 16:09 - 000748964 _____ C:\Windows\System32\perfh015.dat
2025-01-09 01:07 - 2019-12-07 16:09 - 000144674 _____ C:\Windows\System32\perfc015.dat
2025-01-09 01:07 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2025-01-08 21:44 - 2024-06-22 02:50 - 000041107 _____ C:\Users\admin\Downloads\chat.html
2025-01-08 01:09 - 2024-06-20 06:56 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-07 02:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-07 02:33 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2025-01-03 02:32 - 2024-06-20 06:56 - 000000000 ____D C:\Windows\System32\SleepStudy
2025-01-02 21:34 - 2024-06-23 01:44 - 000001558 _____ C:\Users\admin\Documents\Nowy dokument tekstowy.txt
2024-12-28 21:17 - 2024-06-20 06:59 - 000000000 ____D C:\users\admin
2024-12-28 21:05 - 2024-06-21 23:40 - 000000000 ____D C:\Users\admin\Downloads\GoogleChromePortable
2024-12-25 15:49 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2024-12-25 02:02 - 2024-06-20 07:00 - 000000000 ____D C:\Users\admin\AppData\Local\Packages
2024-12-24 15:40 - 2024-06-20 06:57 - 000003566 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-24 15:40 - 2024-06-20 06:57 - 000003442 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-24 14:58 - 2024-06-20 09:05 - 000003592 _____ C:\Windows\System32\Tasks\OneDrive Reporting Task-S-1-5-21-3701954500-3044198085-3446947233-1001
2024-12-24 14:58 - 2024-06-20 09:05 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3701954500-3044198085-3446947233-1001
2024-12-23 19:47 - 2024-06-20 09:34 - 000000000 ____D C:\Users\admin\AppData\Roaming\hpqLog

==================== KnownDLLs (Whitelisted) =========================


==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe
[2024-12-11 04:20] - [2024-12-11 04:20] - 000947200 _____ (Microsoft Corporation) 4E79357D0CC0EF9897239A9BFF18A87C

C:\Windows\System32\wininit.exe
[2024-09-11 18:23] - [2024-09-11 18:23] - 000420656 _____ (Microsoft Corporation) 583B60A43F502D90331E6589E1DBC6DD

C:\Windows\explorer.exe
[2024-12-11 04:19] - [2024-12-11 04:19] - 005974480 _____ (Microsoft Corporation) 690CE9EB3D49AD59C0A9172D2B5EC01E

C:\Windows\SysWOW64\explorer.exe
[2024-12-11 04:20] - [2024-12-11 04:20] - 005242608 _____ (Microsoft Corporation) 09225CD745C09BDBF5CECF784E4004A7

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll
[2024-12-11 04:20] - [2024-12-11 04:20] - 001685464 _____ (Microsoft Corporation) 038F115764C2CFF99252181E6BF9E026

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\dllhost.exe => MD5 is legit
C:\Windows\SysWOW64\dllhost.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== Association (Whitelisted) =============


==================== Restore Points  =========================


==================== Memory info =========================== 

Percentage of memory in use: 17%
Total physical RAM: 6045.32 MB
Available physical RAM: 4970.74 MB
Total Virtual: 6045.32 MB
Available Virtual: 5039.1 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.83 GB) (Free:0 GB) (Model: MTFDHBA256TCK-1AS1AABHA) NTFS
Drive d: (KRD) (Removable) (Total:15.11 GB) (Free:14.31 GB) NTFS
Drive e: (UEFI_NTFS) (Removable) (Total:0 GB) (Free:0 GB) FAT
Drive f: () (Fixed) (Total:0.53 GB) (Free:0.08 GB) (Model: MTFDHBA256TCK-1AS1AABHA) NTFS
Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS

\\?\Volume{1ad4c5cb-ae32-4980-a1a7-54499662ef1a}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 15.1 GB) (Disk ID: 01744C78)
Partition 1: (Active) - (Size=15.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1040 KB) - (Type=EF)
==================== End of FRST.txt ========================